Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

bc04627357...f7.exe

windows7-x64

8

bc04627357...f7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bc0462735776c401e0998d4c595a5dd7fa740ade386f0eb28d36901febc2cdf7

  • Size

    622KB

  • Sample

    221202-3sxgrafc63

  • MD5

    c1cabb2e37a93e1b52741e4db2a42867

  • SHA1

    e0323afd4cbf5a07b455c296e1864fe540b66a52

  • SHA256

    bc0462735776c401e0998d4c595a5dd7fa740ade386f0eb28d36901febc2cdf7

  • SHA512

    d64055c8c1876a33e9151c131638905c8e0a27fd80268022dc491dacbb86b95f0b8df41642a2703fa8151c0018836df2e18b439a65a6281caebee3e6f5bc253a

  • SSDEEP

    12288:D5O2a583b9SeSuKqkOhF/kD+mne9yi35hRySuaKN3atO6XchbtFJJHvzLZyW0:DI3eL7SuxFkajoKRyVNKt7XGx7LZf0

Score
8/10
persistence

Malware Config

Targets

    • Target

      bc0462735776c401e0998d4c595a5dd7fa740ade386f0eb28d36901febc2cdf7

    • Size

      622KB

    • MD5

      c1cabb2e37a93e1b52741e4db2a42867

    • SHA1

      e0323afd4cbf5a07b455c296e1864fe540b66a52

    • SHA256

      bc0462735776c401e0998d4c595a5dd7fa740ade386f0eb28d36901febc2cdf7

    • SHA512

      d64055c8c1876a33e9151c131638905c8e0a27fd80268022dc491dacbb86b95f0b8df41642a2703fa8151c0018836df2e18b439a65a6281caebee3e6f5bc253a

    • SSDEEP

      12288:D5O2a583b9SeSuKqkOhF/kD+mne9yi35hRySuaKN3atO6XchbtFJJHvzLZyW0:DI3eL7SuxFkajoKRyVNKt7XGx7LZf0

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks